Overview

overview

8

Static

static

alabina - ...x).mp3

windows7-x64

1

alabina - ...x).mp3

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ap-file-alabina+-+salma+ya+salama+arabic+version+(remix).mp3--1098957646.zip

  • Size

    4.5MB

  • Sample

    221124-vrs4yaha44

  • MD5

    af7acfb6d258a8064a34ad864fe0039b

  • SHA1

    b0e477bf448f705941b872aba043c39f160fbf2b

  • SHA256

    c1c325282b63dc0fe699ec907200bbbb336cbfa3f6657e65e6b5012ce44aa9bb

  • SHA512

    6276b62e97d9445a42a913ceef455c7f17a6e970a5bf53a448ba545729f6e573648d46add51df9c20f93ce623406afa1eeacce3eaad80f6ada88ca985bac63d7

  • SSDEEP

    98304:R6w+jfDBXKbChUByk95d9xYcIXLyM43bKRQRsAdJHNdWM9ZC7BL:MwQLdcB/d9xYl2HLKKDXWOC7BL

Score
8/10
persistence

Malware Config

Targets

    • Target

      alabina - salma ya salama arabic version (remix).mp3

    • Size

      4.6MB

    • MD5

      3e4eb8307031d78da45c92bdf93ace13

    • SHA1

      5dbbbbd77afa51891d613bb6996c0d5bbebbfd20

    • SHA256

      fbe632ceaf5ce35c35c3455f779b50595629d307a2995db60b7119eccae2f30e

    • SHA512

      3039b520fca65b76bbe5ea6414afecb740ed39cf8f56331f27bb3653a4cee12615137f652d07b92053c86f1b9e607a9e4458db88c31bb2329fbed7ea86f57e9f

    • SSDEEP

      98304:zud2xD9/4Gs7cBLLNsGhVl9K3R/2GTPoLIm/64Ponx/:Kd5G7LLNsA0ukoLIDZ

    Score
    8/10
    persistence

    • Modifies Installed Components in the registry

      persistence

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

3
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks